In brief: A maximum-severity vulnerability (CVSS 10.0) in Cisco SD-WAN is being actively attacked – marking the second critical flaw in Cisco’s network control system exploited this year.
For the second time this year, threat actors are exploiting a critical vulnerability with the maximum CVSS rating of 10.0 in Cisco’s network control system. The company is facing mounting attack attempts.
A severe vulnerability in Cisco’s SD-WAN infrastructure is being actively exploited by attackers in the field. This is already the second known exploitation of a maximum-criticality vulnerability (CVSS 10.0) in Cisco’s network control system within this year. The repeated attacks indicate high interest among threat actors in compromising critical network infrastructure. Organizations should urgently review their SD-WAN systems and deploy available patches to protect themselves against these known vulnerabilities.